Database Encryption
Database encryption allows all columns in all tables in the database to be encrypted. Data in the encrypted database is stored on disk or other media in encrypted form and can only be accessed if the encryption passphrase is known.
Encrypted data is stored in the database files using 256-bit Advanced Encryption Standard (AES) encryption. The encryption is transparent to the applications accessing the data.
Database encryption does not protect data outside of the database, which includes:
• Data passed back and forth to applications
• Transactions that implement data replication at a logical (vs. binary, journal application) level
• Files created via INSERT INTO EXTERNAL CSV statements or using the utilities copydb or unloaddb
Note: If the security of data transmitted over a network is important, you can implement protection using other mechanisms such as AES or KERBEROS. Flat files containing sensitive information that is encrypted in the database should be stored in encrypted files or on encrypted media.
Note: The database encryption feature applies to X100 tables only. Data in heap tables is not encrypted.
Last modified date: 12/19/2024